Share this Job

Please be advised that our Careers site will be unavailable from November 28 at 12am ET to November 29 12am ET for scheduled system maintenance.

Title:  Senior Manager, Technology Infrastructure Risk Management & Remediation




Requisition ID: 155001

Join a purpose driven winning team, committed to results, in an inclusive and high-performing culture.


The team:

Scotiabank’s Global Technology Services (GTS) - IT Risk Advisory team plays an important role in the Bank’s IT Risk Governance Framework, by providing First Line of Defense for GTS and the Bank for all technology risk domains, including Cyber Security, Data Privacy, Software Currency, Disaster and Backup Recovery, Third Party Management, and Audit and Regulatory issue remediation. There are many exciting opportunities to grow in the areas of risk management, business technology development and work with many cross-functional teams within the Bank.


The role:

You support the Director, IT Risk in achieving GTS’s top priorities of IT Availability and Technology Resiliency by collaboratively assessing, analyzing and quantifying IT risk, designing controls and assisting in their implementation. It is part of a strategic and comprehensive IT Risk Management cross-functional organization, ensures control implementation in accordance with regulatory expectations, risk appetite, organizational risk practices and evolving business practices.


You will be working with colleagues and constituents across the Scotiabank footprint. Collaboration technologies such as Microsoft Teams, and Microsoft Skype for Business will be at your disposal to connect with Scotiabankers around the globe.


Is this role right for you?

  • You are prepared to act in the line of defence as IT Risk Management (1B) to ensure implementation of initiatives in accordance with regulatory expectations, risk appetite, organizational risk practices and evolving business practices.
  • You collaborate with 1st Line of Defense (1A) teams, risk owners, to build their capability to identify, assess, mitigate, and monitor risks associated with their use of information and IT systems.
  • You have no hesitation to act as a primary interface and conduit between the risk owners and other lines of defence including Global Risk Management, internal audit, external audit, and equivalent risk advisors in various business areas to oversee the facilitation and execution of risk management activities.
  • You are adept in identifying, assessing, prioritizing, and reporting on material risks for IT and aligned business areas. Conduct risk assessments, Risk Control Self-Assessments (RCSAs) and ensure observations, issues and outputs are recorded in enterprise tools; support IT risk control testing and monitoring and help risk owners with remediation plan.
  • You are eager to monitor IT risk Key Performance Indicators (KPIs) and Key Risk Indicators (KRIs) and develop or manage programs to established performance within bank risk tolerance.  Prioritize risk activities, ensure timely remediation, and escalate when necessary.
  • You embrace the co-ordination of control testing. Facilitate evidence collection and escalate conflicts or roadblocks to relevant Subject Matter Expert (SME) to ensure control testing is completed as per schedule. Prepare quarterly regulatory attestations.
  • Actively pursue effective and efficient operations of your respective areas, while ensuring the adequacy, adherence to and effectiveness of day-to-day business controls to meet obligations with respect to operational risk, regulatory compliance risk, Anti-Money Laundering (AML)/Anti-Terrorism Financing (ATF) risk and conduct risk, including but not limited to responsibilities under the Operational Risk Management Framework, Regulatory Compliance Risk Management Framework, AML/ATF Global Handbook, and the Guidelines for Business Conduct.


Do you have the skills that will enable you to succeed in this role?

  • You can demonstrate solid communication (verbal/written) skills in English. The same in Spanish is preferred.  Furthermore, your ability to communicate confidently and clearly on conference calls, in meetings, via email, etc. at all levels of the organization is essential.
  • You have at least 5+ years of hands-on working experience in IT and risk management functions at a financial services organization (areas of focus could be in governance, operations, internal/external audit, control functions, compliance, risk management, or risk consulting).
  • You possess proven management and strategic influencing capability, supported by well-developed logical and strategic thinking capabilities.
  • You have a good track record on balancing conflicting priorities of various departments and stakeholders which requires a mature, diplomatic approach and highly developed negotiation and influencing skills.
  • You can demonstrate an ability to establish and maintain healthy relationship with different stakeholders (risk owners, oversight, audit, etc.) for a more effective collaboration.
  • You have experience using tools such as Excel, PowerBI, or SQL to aggregate, summarize and analyze data to produce insightful dashboards helping stakeholders to focus on problem areas.
  • A solid asset to have experience with: 1) Information Technology Service Management (ITSM) tools (particularly ServiceNow); 2) strong understanding of Site Reliability Engineering (SRE) principles; and 3) IT service management practices.


What's in it for you?

  • We provide an excellent opportunity to oversee initiatives with risk and IT professionals across Scotiabank’s global footprint to Keep the Bank Safe and Amplify results.
  • You'll get to work with and learn from diverse industry experts, who have hailed from top technology companies around the world.
  • We are technology partners who help the business transform how our employees around the world work.
  • We have an inclusive and collaborative working environment that encourages creativity, curiosity, and celebrates success! We foster an environment of innovation and continuous learning.
  • We care about our people, allowing them to design how they work to deliver amazing results.
  • We offer a competitive total rewards package, including a performance bonus, company matching programs (pension & Employee Share Ownership), generous vacation; health/medical/wellness benefits; employee banking privileges.




Location(s):  Canada : Ontario : Toronto 

Scotiabank is a leading bank in the Americas. Guided by our purpose: "for every future", we help our customers, their families and their communities achieve success through a broad range of advice, products and services, including personal and commercial banking, wealth management and private banking, corporate and investment banking, and capital markets.  

At Scotiabank, we value the unique skills and experiences each individual brings to the Bank, and are committed to creating and maintaining an inclusive and accessible environment for everyone. If you require accommodation (including, but not limited to, an accessible interview site, alternate format documents, ASL Interpreter, or Assistive Technology) during the recruitment and selection process, please let our Recruitment team know. If you require technical assistance, please click here. Candidates must apply directly online to be considered for this role. We thank all applicants for their interest in a career at Scotiabank; however, only those candidates who are selected for an interview will be contacted.

Job Segment: Compliance, Risk Management, Information Technology, Testing, IT Manager, Legal, Finance, Technology